Microsoft | Mozilla | Adobe | Cisco | Citrix

Advisory ID: 
JMCIRT-SA-2020.111
Advisory Date: 
Friday, July 24, 2020
Advisory Description: 

Microsoft Releases Security Update for Edge
Original release date: July 17, 2020

Microsoft has released a security update to address a vulnerability in Edge (Chromium-based). An attacker could exploit this vulnerability to drop Dynamic Link Library (DLL) files and gain elevated privileges.

The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the Microsoft’s Security Advisory for CVE-2020-1341 and apply the necessary updates.


Mozilla Releases Security Update for Thunderbird
Original release date: July 17, 2020

Mozilla has released a security update to address multiple vulnerabilities in Thunderbird. An attacker could exploit some of these vulnerabilities to take control of an affected system.

The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the Mozilla Security Advisory for Thunderbird 78 and apply the necessary updates.


Adobe Releases Security Updates
Original release date: July 22, 2020

Adobe has released security updates to address vulnerabilities in multiple Adobe products. An attacker could exploit some of these vulnerabilities to take control of an affected system.

The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the following Adobe Security Bulletins and apply the necessary updates:
Bridge
Photoshop
Prelude
Reader Mobile


Cisco Releases Security Updates for ASA and FTD Software
Original release date: July 23, 2020

Cisco has released security updates to address a vulnerability in Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software Web Service. A remote attacker could exploit this vulnerability to obtain sensitive information.

The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the Cisco Security Advisory and apply the necessary updates.


Citrix Releases Security Updates for Workspace App for Windows
Original release date: July 23, 2020

Citrix has released security updates to address a vulnerability in Workspace app for Windows.  A remote attacker could exploit this vulnerability to take control of an affected system if Windows Server Message Block (SMB) is enabled.

The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the following Citrix Security Bulletin and apply the necessary updates.

 


References
1. https://www.us-cert.gov
2. https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2...
3. https://www.mozilla.org/en-US/security/advisories/mfsa2020-29/
4. https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/ci...
5. https://support.citrix.com/article/CTX277662
6. https://helpx.adobe.com/security.html